138.68.31.62 - IPInfo

Basic Info

City: Santa Clara

Region: California

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Brute force SMTP login attempted. ...	2019-08-10 02:28:34

Comments on same subnet:

IP	Type	Details	Datetime
138.68.31.191	spamattack	Pretends to be the Microsoft Corporation + downloads a virus and claims that your laptop, computer or phone is blocked.	2020-10-08 01:53:27
138.68.31.105	attack	2020-05-14T05:09:36.0640851495-001 sshd[9811]: Invalid user test from 138.68.31.105 port 47550 2020-05-14T05:09:37.5799281495-001 sshd[9811]: Failed password for invalid user test from 138.68.31.105 port 47550 ssh2 2020-05-14T05:15:52.0956781495-001 sshd[10020]: Invalid user atv from 138.68.31.105 port 52072 2020-05-14T05:15:52.1004581495-001 sshd[10020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.31.105 2020-05-14T05:15:52.0956781495-001 sshd[10020]: Invalid user atv from 138.68.31.105 port 52072 2020-05-14T05:15:53.8950891495-001 sshd[10020]: Failed password for invalid user atv from 138.68.31.105 port 52072 ssh2 ...	2020-05-14 18:47:39
138.68.31.105	attackbots	2020-05-12T04:50:38.854396shield sshd\[28553\]: Invalid user karaf from 138.68.31.105 port 33608 2020-05-12T04:50:38.857681shield sshd\[28553\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.31.105 2020-05-12T04:50:40.840892shield sshd\[28553\]: Failed password for invalid user karaf from 138.68.31.105 port 33608 ssh2 2020-05-12T04:57:49.404454shield sshd\[30571\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.31.105 user=root 2020-05-12T04:57:51.889400shield sshd\[30571\]: Failed password for root from 138.68.31.105 port 44230 ssh2	2020-05-12 13:15:27
138.68.31.105	attack	May 7 03:39:42 raspberrypi sshd\[9614\]: Failed password for root from 138.68.31.105 port 35952 ssh2May 7 03:45:19 raspberrypi sshd\[11616\]: Failed password for root from 138.68.31.105 port 42628 ssh2May 7 03:48:02 raspberrypi sshd\[13171\]: Invalid user postgres from 138.68.31.105 ...	2020-05-07 19:20:19
138.68.31.105	attack	Apr 21 06:57:30 vpn01 sshd[10849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.31.105 Apr 21 06:57:32 vpn01 sshd[10849]: Failed password for invalid user tx from 138.68.31.105 port 38556 ssh2 ...	2020-04-21 13:00:36
138.68.31.105	attackspambots	$f2bV_matches	2020-04-14 03:48:17
138.68.31.105	attackspam	Automatic report - SSH Brute-Force Attack	2020-04-02 17:11:00
138.68.31.105	attackbotsspam	Mar 27 04:44:55 v22018086721571380 sshd[26861]: Failed password for invalid user wilfrid from 138.68.31.105 port 58710 ssh2	2020-03-27 12:02:16

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.31.62
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1209
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.31.62.			IN	A

;; AUTHORITY SECTION:
.			2002	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061300 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 13 17:39:53 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 62.31.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 62.31.68.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.248.121.67	attackspambots	Nov 8 23:36:24 ns41 sshd[19849]: Failed password for root from 104.248.121.67 port 57265 ssh2 Nov 8 23:36:24 ns41 sshd[19849]: Failed password for root from 104.248.121.67 port 57265 ssh2	2019-11-09 06:57:11
185.244.212.186	attackbotsspam	RDPBruteCAu	2019-11-09 07:03:18
173.44.34.178	attackspam	Looking for resource vulnerabilities	2019-11-09 06:39:51
51.68.174.177	attackspambots	Nov 8 23:36:25 cavern sshd[13762]: Failed password for root from 51.68.174.177 port 34266 ssh2	2019-11-09 06:56:00
118.250.113.124	attack	Time: Fri Nov 8 11:01:33 2019 -0300 IP: 118.250.113.124 (CN/China/-) Failures: 10 (ftpd) Interval: 3600 seconds Blocked: Permanent Block	2019-11-09 06:35:06
58.127.28.54	attack	Nov 8 23:27:59 legacy sshd[29349]: Failed password for root from 58.127.28.54 port 43922 ssh2 Nov 8 23:32:43 legacy sshd[29445]: Failed password for root from 58.127.28.54 port 53884 ssh2 ...	2019-11-09 06:46:39
185.176.27.2	attackbotsspam	11/08/2019-23:36:44.231878 185.176.27.2 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-09 06:45:53
112.215.141.101	attack	Nov 8 23:54:05 * sshd[11378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.215.141.101 Nov 8 23:54:07 * sshd[11378]: Failed password for invalid user porsche996 from 112.215.141.101 port 55401 ssh2	2019-11-09 07:05:33
104.42.158.117	attackspambots	ssh failed login	2019-11-09 06:36:57
13.56.147.73	attack	Automatic report - Port Scan Attack	2019-11-09 06:33:47
54.37.14.3	attackspambots	Nov 8 17:33:00 ny01 sshd[11994]: Failed password for root from 54.37.14.3 port 52600 ssh2 Nov 8 17:36:31 ny01 sshd[12341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.14.3 Nov 8 17:36:33 ny01 sshd[12341]: Failed password for invalid user test1 from 54.37.14.3 port 34028 ssh2	2019-11-09 06:51:04
106.13.43.168	attackspam	2019-11-08T22:36:31.447527abusebot-7.cloudsearch.cf sshd\[3050\]: Invalid user login from 106.13.43.168 port 57182	2019-11-09 06:52:21
51.91.251.177	attackspambots	Nov 9 01:24:53 server sshd\[31204\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.ip-51-91-251.eu user=root Nov 9 01:24:56 server sshd\[31204\]: Failed password for root from 51.91.251.177 port 44750 ssh2 Nov 9 01:36:10 server sshd\[1938\]: Invalid user cacti from 51.91.251.177 Nov 9 01:36:10 server sshd\[1938\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.ip-51-91-251.eu Nov 9 01:36:12 server sshd\[1938\]: Failed password for invalid user cacti from 51.91.251.177 port 38132 ssh2 ...	2019-11-09 07:04:19
45.143.220.31	attackspambots	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-11-09 06:46:54
104.168.133.166	attackspam	Nov 8 12:55:57 www6-3 sshd[32638]: Invalid user ik from 104.168.133.166 port 33990 Nov 8 12:55:57 www6-3 sshd[32638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.168.133.166 Nov 8 12:55:59 www6-3 sshd[32638]: Failed password for invalid user ik from 104.168.133.166 port 33990 ssh2 Nov 8 12:55:59 www6-3 sshd[32638]: Received disconnect from 104.168.133.166 port 33990:11: Bye Bye [preauth] Nov 8 12:55:59 www6-3 sshd[32638]: Disconnected from 104.168.133.166 port 33990 [preauth] Nov 8 13:18:38 www6-3 sshd[1808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.168.133.166 user=r.r Nov 8 13:18:41 www6-3 sshd[1808]: Failed password for r.r from 104.168.133.166 port 38420 ssh2 Nov 8 13:18:41 www6-3 sshd[1808]: Received disconnect from 104.168.133.166 port 38420:11: Bye Bye [preauth] Nov 8 13:18:41 www6-3 sshd[1808]: Disconnected from 104.168.133.166 port 38420 [preauth] Nov 8........ -------------------------------	2019-11-09 06:27:43

Recently Reported IPs

137.142.185.242	45.116.113.153	95.9.194.189	167.165.125.42
79.60.125.125	102.170.35.167	160.120.6.194	208.193.121.176
118.72.137.101	62.93.36.84	221.210.156.151	60.24.114.42
85.147.115.238	188.227.193.126	49.88.97.161	213.139.106.170
92.219.159.4	191.198.85.126	121.119.41.235	179.148.53.65